Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Make AuthenticatorAttestationResponseJSON.publicKeyAlgorithm a long #2065

Open
zacknewman opened this issue May 1, 2024 · 2 comments · May be fixed by #2071
Open

Make AuthenticatorAttestationResponseJSON.publicKeyAlgorithm a long #2065

zacknewman opened this issue May 1, 2024 · 2 comments · May be fixed by #2071
Assignees
@emlun
Labels
type:technical
Milestone
L3-WD-02

Comments

@zacknewman
Copy link

COSEAlgorithmIdentifier is defined as a long, but AuthenticatorAttestationResponseJSON.publicKeyAlgorithm is a long long. While RPs are likely based on 64-bit platforms, it seems unnecessary to require 64-bit signed integers when a 32-bit signed integer is sufficient. What is the reason for this deviation? Is it based on "common" JSON libraries that model numbers as 64-bit signed integers?
@nadalin nadalin added this to the L3-WD-02 milestone May 15, 2024
@emlun
Copy link
Member

emlun commented May 15, 2024

Thanks for pointing this out!

2024-05-15 WG call: AuthenticatorAttestationResponseJSON was added in the L3 drafts, so we can easily change AuthenticatorAttestationResponseJSON.publicKeyAlgorithm to type long (or COSEAlgorithmIdentifier) since L3 isn't formally released yet. AuthenticatorAttestationResponseJSON.publicKeyAlgorithm is also in output (covariant) position, so changing its type to be more restrictive is even backwards compatible.

emlun added a commit that referenced this issue May 15, 2024
@emlun
Fix type of AuthenticatorAttestationResponseJSON.publicKeyAlgorithm
c8eeef5 
Fixes #2065.

`AuthenticatorAttestationResponseJSON` was added in the L3 drafts, so
we can easily change
`AuthenticatorAttestationResponseJSON.publicKeyAlgorithm` to type
`long` (or `COSEAlgorithmIdentifier`) since L3 isn't formally released
yet. `AuthenticatorAttestationResponseJSON.publicKeyAlgorithm` is also
in output (covariant) position, so changing its type to be more
restrictive is even backwards compatible.
@emlun emlun linked a pull request May 15, 2024 that will close this issue
Open
@selfissued
Copy link
Contributor

I support this change. As discussed in last weeks' call, ff you look at the COSE algorithm registration rules, it's the numbers outside the 16-bit spaces that are clearly outliers. There's no hint of ever going beyond 32-bit identifiers.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@emlun emlun

Labels
type:technical
Projects
None yet
Milestone
L3-WD-02
Development

Successfully merging a pull request may close this issue.

Fix type of AuthenticatorAttestationResponseJSON.publicKeyAlgorithm w3c/webauthn
4 participants
@emlun @selfissued @nadalin @zacknewman